CVE-2018-25339 – Zechat 1.5 SQL Injection via v parameter (time-based blind)

CVE ID :CVE-2018-25339

Published : May 17, 2026, 12:11 p.m. | 46 minutes ago

Description :Zechat 1.5 contains a SQL injection vulnerability in the v parameter that allows unauthenticated attackers to extract database information using time-based blind techniques. Attackers can exploit the v parameter with sleep-based blind injection to confirm vulnerability and extract data.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…